Universal Certificate for UNIX and Windows

Overview

Universal Certificate for UNIX and Windows executes as a command line application.

Command Line Syntax

The following figure illustrates the syntax - using the long form of command line options - of Universal Certificate for UNIX and Windows.


ucert
[-codepage codepage]
[-nls_directory codepage]
[-level {trace|audit|info|warn|error}]
[ -file filename | -encryptedfile filename [-key key] [-keypath path] ]


Creating a certificate request.
{-create request
-request_file filename [-request_format {pem|der}]
-private_key_file filename [-private_key_format {pem|der}]
-private_key_infile filename [-private_key_format {pem|der}]
[-private_key_pwd password]
[-private_key_type {RSA|EC}]
[-key_size {512|1024|2048|3072|4096}]
[-elliptic_curve {secp112r2|secp160r1|secp224k1|prime256v1|secp384r1}]
[-country name]
[-state name]
[-locality name]
[-organization name]
[-organizational_unit name]
[-common_name name]
{ [-dns_name name] | [-ip_address name] }
[-sig_alg algorithm]
[-email_address name]


Creating a certificate from a certificate request.
| -create cert
-request_file filename [-request_format {pem|der}]
-cert_file filename [-cert_format {pem|der}]
[-cert_db filename]
-private_key_file filename [-private_key_format {pem|der}]
-private_key_infile filename [-private_key_format {pem|der}]
[-private_key_pwd password]
-ca_cert_file filename [-ca_cert_format {pem|der}]
[-serial_number number]
[-not_before_date date] [-not_after_date date]
[-ca {yes|no}]
[-sig_alg algorithm]


Creating a certificate from a transport file.
| -create cert
-transport_file filename [-transport_file_pwd password]
-cert_file filename [-cert_format {pem|der}]
-private_key_file filename [-private_key_format {pem|der}]
-private_key_infile filename [-private_key_format {pem|der}]
-ca_cert_file filename [-ca_cert_format {pem|der}]


Creating a certificate revocation list.
| -create crl
-crl_file filename [-crl_format {pem|der}]
-ca_cert_file filename [-ca_cert_format {pem|der}]
-private_key_file filename [-private_key_format {pem|der}]
-private_key_infile filename [-private_key_format {pem|der}]
[-private_key_pwd password]
-next_update_days days
-next_update_hours hours
[-cert_db filename]


Creating a transport file.
| -create transport
-transport_file filename [-transport_file_pwd password]
-cert_file filename [-cert_format {pem|der}]
-private_key_file filename [-private_key_format pem|der}]
-private_key_infile filename [-private_key_format {pem|der}]
[-private_key_pwd password]
-ca_cert_file filename [-ca_cert_format {pem|der}]
[-common_name name]
[-keypbe encryption]
[-certpbe encryption]


Revoking a certificate.
| -revoke cert
[-revoke_reason {unspecified|keyCompromise|caCompromised|affiliationChange|superseded|cessationofOperation|privilegeWithdrawn}]
-cert_file filename [-cert_format {pem|der}]
[-cert_db filename]


Printing a certificate request.
| -print request
-request_file filename [-request_format {pem|der}]


Printing a certificate.
| -print cert
-cert_file filename [-cert_format {pem|der}]


Printing a certificate revocation list.
| -print crl
-crl_file filename [-crl_format {pem|der}]


Printing a transport file.
| -print transport
-transport_file filename [-transport_file_pwd password]


Verifying a certificate.
| -verify cert
-cert_file filename [-cert_format {pem|der}]
-ca_cert_file filename [-ca_cert_format {pem|der}]
-crl_file filename [-crl_format {pem|der}]


ucert
{ -help | -version }